Charities not exempt from data protection laws, says ICO

News

Charities not exempt from data protection laws, says ICO

Warwick Ashford

Charities must not neglect their legal responsibility to protect personal information, says the Information Commissioner's Office (ICO).

The ICO has found the Alzheimer's Society in breach of the Data Protection Act after the organisation reported losses of personal data in 2009.

Several laptops were stolen during a burglary in Cardiff, but none were encrypted, secured by cable locks or locked away securely, the ICO said.

One of the laptops contained the personal details, including names, addresses, national insurance numbers and salary details, of about 1,000 staff across England, Wales and Northern Ireland.

The Alzheimer's Society has signed a formal Undertaking to improve security.

The Undertaking requires staff to be made aware of the Society's policies for the storage, use and disposal of personal information.

Sally-anne Poole, head of investigations at the ICO, said portable devices must be encrypted if they are used to store personal information.

"It is vital that all organisations ensure personal information is handled securely and that appropriate staff have adequate training in this area," she said.


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
 

COMMENTS powered by Disqus  //  Commenting policy